The amount of source IP addresses for port 3127 scans (ie. infected computers) was above 50,000 on Tuesday as measured by Incidents.org.